Resubmissions

18-10-2023 13:13

231018-qgagmagb56 10

18-10-2023 13:10

231018-qectzagb42 10

18-10-2023 13:06

231018-qcaa3agb24 10

General

  • Target

    Eternity (2).zip

  • Size

    34.8MB

  • Sample

    231018-qgagmagb56

  • MD5

    575892729ab0652859f2b9fcc86d5860

  • SHA1

    de0814285612ab8285d9e005a198f3d7180fd9ac

  • SHA256

    2b3eedec1b4085c4838f570b95bf88f27e9531ed910fe37bd5559a9246477474

  • SHA512

    8afab23055cc38f57cd3f3c90511aec0341ac43f1f7aed9f0eb108e215a47a270e3ad1cc8601d64613ada579f3f69f90fc1f601058ffaa0d4b6208c53df323aa

  • SSDEEP

    786432:PAC7nH2aVTL6nSs/6DvmcKKn0UzBew2Bb1XWbMfLC5Y9L7rGd7rp:PH7nWYTYSX9KK0bZXvzC5Qu7rp

Score
10/10

Malware Config

Targets

    • Target

      Eternity (2).zip

    • Size

      34.8MB

    • MD5

      575892729ab0652859f2b9fcc86d5860

    • SHA1

      de0814285612ab8285d9e005a198f3d7180fd9ac

    • SHA256

      2b3eedec1b4085c4838f570b95bf88f27e9531ed910fe37bd5559a9246477474

    • SHA512

      8afab23055cc38f57cd3f3c90511aec0341ac43f1f7aed9f0eb108e215a47a270e3ad1cc8601d64613ada579f3f69f90fc1f601058ffaa0d4b6208c53df323aa

    • SSDEEP

      786432:PAC7nH2aVTL6nSs/6DvmcKKn0UzBew2Bb1XWbMfLC5Y9L7rGd7rp:PH7nWYTYSX9KK0bZXvzC5Qu7rp

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      Bunifu.dll

    • Size

      232KB

    • MD5

      a956773892ea3bb538c4656475c35126

    • SHA1

      e2cc84075cd18b96623fd29d529873f379e398c2

    • SHA256

      d95d7cdb4a549a7f9a06c9059027bd90e926a15b21f118a59536ee9b5febb768

    • SHA512

      d376b8700d2461e63c4da6fc0dedcc33aa44dca4766fa50fa2cc4475d8bb00fc919568967a2f3b250b8f40a3e45bf48421f3b7f35e081a55805683f3092645e7

    • SSDEEP

      6144:wHZKhR7DDGGWH7qriB6V5XGLXHb4Hp9JH:wHZKhR7DDGGemriBw5XFHz

    Score
    1/10
    • Target

      DiscordRPC.dll

    • Size

      79KB

    • MD5

      ad463f573775c43a561ade842c41b0e8

    • SHA1

      e70e10a18a3ae85cd1ca9be66a7bb46d99ccccd3

    • SHA256

      6a18dfc8bdc6030787b5814c76b8663dbe5b8ca469beb65a2ca9f5731fa1906f

    • SHA512

      0c790e70150148f4cc516cc9abcdf42a5b28a0785a61cd02ab7d59776df25eaeea287c98522d4b3271cae8bf35f98d91049c6474e81cc2745dc32a808832efe0

    • SSDEEP

      768:Jp+8VvNVQPCNRRUzpEqrK0V2Yct83YVhEbqoL/wDIijcJRM2S0B+mhx9HS4i6E4m:nVvNGP6U1bwueoRPMVo+mhxVS4i60

    Score
    1/10
    • Target

      ENet.Managed.dll

    • Size

      827KB

    • MD5

      3f8236a0197619372e34ba56c0115b72

    • SHA1

      1ba33fb9c49b070dec8470aa1005f7fcadc6cff7

    • SHA256

      37aa8c0f4e287cb3f5d30fd3a3db781637ec1e3966038c84564e5d5d34c7ca6d

    • SHA512

      5e1b0749f2791fe3e1aa50740f3f75925cc7662a0d63a3f8f8703690600aaa5e17a0d928fa90c3fc12aac397f1f5c1f8750e5c8e59d05bcf6339bdc1ba9af9f5

    • SSDEEP

      12288:uRqwhxzcEtaJzhp/tDLb3Oun7H0HLv3rJmZLcyKu7RTT6akCN7VcX:uxYFVDP5ALTMLp/t7kCVq

    Score
    1/10
    • Target

      Eternity.exe

    • Size

      40.7MB

    • MD5

      dd25c1eb2ee26fae2e4e1514568f08a2

    • SHA1

      4e1c0cc2354510a550f54692449780b8e5613d01

    • SHA256

      feed95481351dc1e993cdb061ae0eb28bfe18bc46409d231ee1ddc5e7c538181

    • SHA512

      53554600d9f45271658a126a33a08ead6f15ac25736cdc85efaa9e9a831564626f3e42fdbb02f5c2891b743b0127b57e41db5b5857a558710619702d147e8e4f

    • SSDEEP

      786432:hzvsyBy7Mu30RZFaG4ZmI1XHMX+XJQripdhr:ayCMr3EG4TVHjZQr+hr

    Score
    10/10
    • Growtopia

      Growtopa is an opensource modular stealer written in C#.

    • Loads dropped DLL

    • Target

      Newtonsoft.Json.dll

    • Size

      659KB

    • MD5

      4df6c8781e70c3a4912b5be796e6d337

    • SHA1

      cbc510520fcd85dbc1c82b02e82040702aca9b79

    • SHA256

      3598cccad5b535fea6f93662107a4183bfd6167bf1d0f80260436093edc2e3af

    • SHA512

      964d9813e4d11e1e603e0a9627885c52034b088d0b0dfa5ac0043c27df204e621a2a654445f440ae318e15b1c5fea5c469da9e6a7350a787fef9edf6f0418e5c

    • SSDEEP

      12288:rktg1lrjC8rjICqbwNjR4xq7iiX19K7Df/SoOKQrIB+jfP:rggD7PIEjR4xq7iiXTK7D3So9AIB+jn

    Score
    1/10
    • Target

      System.Buffers.dll

    • Size

      20KB

    • MD5

      a48936868abf91274def7231aa52dbb5

    • SHA1

      f02fa5231536c0dd9cef9e84e609646b23d5d33c

    • SHA256

      423200010a7684763451473a4fb206dfa074fc8249676621ef9d9a13417d364d

    • SHA512

      c8fe3d1314794ae7071a647e328a46a30e6d96e574daa896fcebebf6bb51ce0af14e6cc63a0e1600a0e4adbc7aa18e97ee58581adccac23981c029ea782b5f9d

    • SSDEEP

      384:ay/fjFwUI/KQyVvKdDhG6ISDFWvYW8aIcyHRN7WEg2ly0:auhMaVmzDC6b

    Score
    1/10
    • Target

      System.Memory.dll

    • Size

      133KB

    • MD5

      c4733dc2af87b7085cabcbabe7cde958

    • SHA1

      091cba44da9d5584b8746b3e386fd3776dfab743

    • SHA256

      3cb4f4f803c41b22c97ec61f752f93efc7be9328f8ceaa9ab0f36d3c5b563ef7

    • SHA512

      67f829e32a3ab5a8404b9bf20d265076c0a89e50b639022dca42bfd3ad1cde15dba40dbdcb777d6b7475a20b493811fa70e540a4ffa855cb8da5c34119684cf5

    • SSDEEP

      3072:XP3XFz0qjCIIMAxlUXsKovHO420kN1A6C8I:Xh0qjC5RMOHO420kN1

    Score
    1/10
    • Target

      System.Numerics.Vectors.dll

    • Size

      113KB

    • MD5

      aaa2cbf14e06e9d3586d8a4ed455db33

    • SHA1

      3d216458740ad5cb05bc5f7c3491cde44a1e5df0

    • SHA256

      1d3ef8698281e7cf7371d1554afef5872b39f96c26da772210a33da041ba1183

    • SHA512

      0b14a039ca67982794a2bb69974ef04a7fbee3686d7364f8f4db70ea6259d29640cbb83d5b544d92fa1d3676c7619cd580ff45671a2bb4753ed8b383597c6da8

    • SSDEEP

      1536:nPOw0SUUKw+GbgjMV+fCY1UiiGZ6qetMXIAMZ2zstK/hV+sUwS:nWw0SUUKBM8aOUiiGw7qa9tK/bJS

    Score
    1/10
    • Target

      System.Runtime.CompilerServices.Unsafe.dll

    • Size

      16KB

    • MD5

      c4cfe03f75bc01969bc936c9c09baa12

    • SHA1

      cb96ea48ee8aa9fe764d6f1ec30751001a0a646d

    • SHA256

      a2d38a330df390cc739689369a36520fe491d3660d73974eb46b51608f50675b

    • SHA512

      6db15403523b6c966d7aa6906cfc219a956f6c7a68c60774e9ed9f261df1a4d6731b92c59f3caafaeb345b853cd237fa163155b8b8e7825ba69a634878c929e2

    • SSDEEP

      192:RMyaqO8cxdQWXYWJeaotWsI9A9GaHnhWgN7aJeWwgCWuXqnaju02aU:RTO9dQWXYW8aocyHRN7WEgSly0

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks